Route Origin Authorization
$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/RECTALE/blKg7wJ9niT2GKE8Ai5eCrB4jfE.roa
File: blKg7wJ9niT2GKE8Ai5eCrB4jfE.roa (raw, json)
Hash identifier: 6A2bDcN2I3eYBOEMf/HeuEkp9GVCJNioQRbDNF9mxfc=
Subject key identifier: 6E:52:A0:EF:02:7D:9E:24:F6:18:A1:3C:02:2E:5E:0A:B0:78:8D:F1
Certificate issuer: /CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Certificate serial: 011F
Authority key identifier: E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/blKg7wJ9niT2GKE8Ai5eCrB4jfE.roa
Signing time: Thu 15 Sep 2022 02:41:51 +0000
ROA not before: Thu 15 Sep 2022 02:41:51 +0000
ROA not after: Wed 06 Sep 2023 03:00:35 +0000
asID: 210707
IP address blocks: 2407:d1c0::/32 maxlen: 64
Validation: Failed, RFC 3779 resource not subset of parent's resources
Certificate:
Data:
Version: 3 (0x2)
Serial Number: 287 (0x11f)
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=E2AF8CFD95270FCF5C2CA65D87777F6FB7ABFD32
Validity
Not Before: Sep 15 02:41:51 2022 GMT
Not After : Sep 6 03:00:35 2023 GMT
Subject: CN=6E52A0EF027D9E24F618A13C022E5E0AB0788DF1
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:93:55:e8:93:ff:9c:9a:18:17:84:10:0a:bf:05:
d2:ad:3b:89:3d:68:79:28:fe:21:a9:62:b0:c7:f1:
00:56:58:cd:9e:1f:7d:95:e0:90:95:4f:79:d7:33:
36:cb:b6:ca:98:b2:4f:e4:09:8a:ca:5c:fd:e8:e6:
68:d2:04:eb:88:f0:d9:2c:89:b9:3e:5c:d6:73:88:
ca:36:e9:35:d5:7b:f4:65:aa:fc:2f:a7:f5:a9:c0:
9f:9e:e2:b6:c8:0b:12:b8:4c:ad:d7:f0:14:c9:8a:
42:c0:ba:b0:e1:e6:2f:16:35:e7:17:8e:83:8f:e6:
7f:c4:7a:15:11:c2:4e:e0:6f:2d:c4:54:01:71:7d:
aa:c2:32:0c:14:a3:52:cd:c2:e2:d1:8a:99:6b:f9:
26:52:94:ab:7a:02:b8:3e:76:2c:5e:7c:ee:98:c8:
da:45:82:64:1a:d5:3a:77:cf:6d:71:53:e8:ca:e6:
c8:9c:b8:b3:d5:ce:6c:ce:cd:79:00:6c:86:95:c0:
b9:80:f0:de:bd:b5:1c:c1:45:20:a9:bb:2a:f7:ea:
b5:1b:fc:0b:5f:5b:c0:a4:00:d7:ba:19:97:57:6c:
0c:1d:3d:53:3d:16:89:42:45:69:fa:9c:78:2a:40:
04:e1:54:98:cd:9b:86:39:3e:30:13:2f:3b:0a:f4:
66:33
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
6E:52:A0:EF:02:7D:9E:24:F6:18:A1:3C:02:2E:5E:0A:B0:78:8D:F1
X509v3 Authority Key Identifier:
keyid:E2:AF:8C:FD:95:27:0F:CF:5C:2C:A6:5D:87:77:7F:6F:B7:AB:FD:32
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/4q-M_ZUnD89cLKZdh3d_b7er_TI.crl
Authority Information Access:
CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/4q-M_ZUnD89cLKZdh3d_b7er_TI.cer
X509v3 Key Usage: critical
Digital Signature
Subject Information Access:
Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/RECTALE/blKg7wJ9niT2GKE8Ai5eCrB4jfE.roa
RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml
sbgp-ipAddrBlock: critical
IPv6:
2407:d1c0::/32
Signature Algorithm: sha256WithRSAEncryption
75:54:a7:5e:e9:d6:ef:d2:cc:6b:22:e1:e1:da:1f:ea:cb:4e:
a2:4d:68:ba:35:13:aa:ca:60:fa:83:60:ff:59:a0:86:31:c9:
5c:ac:31:1b:96:e0:37:ba:38:0f:47:ab:94:73:0f:95:d8:fd:
0a:98:57:23:ea:41:5c:02:32:55:f8:3a:69:48:c5:d1:33:8f:
e1:ad:dc:1a:6b:46:30:78:7a:e7:20:e7:11:2c:b8:9f:de:36:
aa:3e:2a:18:9d:98:18:63:ca:bf:9e:2d:4b:f4:23:ab:83:9b:
bc:58:41:c9:fd:57:af:a3:17:5b:6e:af:b8:75:56:71:24:f1:
64:7c:3d:2a:15:8e:76:93:8e:57:9f:8a:97:30:fb:49:b7:d7:
9b:e4:c2:2e:4d:7c:2c:08:f0:90:42:64:d8:dd:8e:ba:41:b5:
dc:ba:b8:b2:3b:c6:33:dc:b9:b9:64:d1:1d:63:80:e2:1a:b6:
25:06:76:78:71:bb:c4:80:3d:c1:9d:ea:96:10:2c:56:2a:7f:
29:7c:f6:fe:db:57:9d:4a:27:19:8c:8c:33:be:00:b3:b6:f3:
4e:c7:34:c9:e7:56:81:fc:50:2d:db:85:06:1f:be:d5:1f:cc:
2c:65:99:a1:16:e2:ab:c1:e7:ea:73:79:af:65:8c:bc:c8:31:
36:d3:36:ff
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jul 20 00:08:16 2023 by rpki-client on console-fra.rpki-client.org